chore: finish token service and half way auth middleware

phamphihungbk · phamphihungbk · commit 7c2edd9a4088 · 2023-08-06T22:54:51.000+02:00
diff --git a/server/internal/repository/user_repository.go b/server/internal/repository/user_repository.go
@@ -6,7 +6,7 @@ import (
 )
 
 type IUserRepository interface {
-	GetAll(limit int, page int, sort string) ([]*model.User, error)
+	GetAll(limit int, page int, sort string) (*model.UsersConnection, error)
 	FindByEmail(email string) (*model.User, error)
 	Create(input model.CreateUserPayload) (*model.User, error)
 	Update(input model.UpdateUserPayload) (*model.User, error)
@@ -23,17 +23,17 @@ func NewUserRepository(db *gorm.DB) *UserRepository {
 	}
 }
 
-func (r *UserRepository) GetAll(limit int, page int, sort string) (*model.UserConnection, error) {
+func (r *UserRepository) GetAll(limit int, page int, sort string) (*model.UsersConnection, error) {
 	var users []*model.User
 	query := paginate(limit, page, sort)
 	err := r.db.Scopes(query).Find(&users).Error
 	pageInfo := &model.PageInfo{limit, page, sort}
 
 	if err != nil {
-		return &model.UserConnection{nil, pageInfo}, err
+		return &model.UsersConnection{PageInfo: pageInfo}, err
 	}
 
-	return &model.UserConnection{users, pageInfo}, nil
+	return &model.UsersConnection{Edges: users, PageInfo: pageInfo}, nil
 }
 
 func (r *UserRepository) FindByEmail(email string) (*model.User, error) {
diff --git a/server/internal/service/token_service.go b/server/internal/service/token_service.go
@@ -1,8 +1,9 @@
 package service
 
 import (
-	jwt "github.com/golang-jwt/jwt/v5"
-	"github.com/phamphihungbk/go-graphql/internal/model"
+	"fmt"
+	"github.com/golang-jwt/jwt/v5"
+	"github.com/phamphihungbk/go-graphql-api/internal/model"
 	"time"
 )
 
@@ -14,8 +15,8 @@ const (
 )
 
 type ITokenService interface {
-	generate() (Token, error)
-	validate() error
+	create(user *model.User) (string, error)
+	validate(tokenString string) (jwt.MapClaims, error)
 }
 
 type TokenService struct {
@@ -25,12 +26,12 @@ func NewTokenService() *TokenService {
 	return &TokenService{}
 }
 
-func (s *TokenService) generate(user *model.User) string {
+func (s *TokenService) create(user *model.User) (string, error) {
 	issuedTime := time.Now().Unix()
 	expiredTime := issuedTime + ExpiredInterval
 
 	token := jwt.NewWithClaims(
-		jwt.SigningMethodES256,
+		jwt.SigningMethodHS256,
 		jwt.MapClaims{
 			"iss":   Issuer,
 			"sub":   user.ID,
@@ -45,6 +46,20 @@ func (s *TokenService) generate(user *model.User) string {
 	return token.SignedString(PrivateKey)
 }
 
-func (s *TokenService) validate() error {
-	return nil
+func (s *TokenService) validate(tokenString string) (jwt.MapClaims, error) {
+	var hmacSampleSecret []byte
+	token, err := jwt.Parse(tokenString, func(token *jwt.Token) (interface{}, error) {
+		if _, ok := token.Method.(*jwt.SigningMethodHMAC); !ok {
+			return nil, fmt.Errorf("Unexpected signing method: %v", token.Header["alg"])
+		}
+
+		return hmacSampleSecret, nil
+	})
+
+	claims, ok := token.Claims.(jwt.MapClaims)
+	if ok && token.Valid {
+		return claims, nil
+	}
+
+	return nil, err
 }
diff --git a/server/internal/service/user_service.go b/server/internal/service/user_service.go
@@ -8,7 +8,7 @@ import (
 )
 
 type IUserService interface {
-	GetAllUsers(limit int, page int, sort string) (*model.UserConnection, error)
+	GetAllUsers(limit int, page int, sort string) (*model.UsersConnection, error)
 	GetUser(email string) (*model.User, error)
 	IssueToken(payload model.LoginPayload) (*model.AccessToken, error)
 	CreateUser(payload model.CreateUserPayload) (*model.User, error)
@@ -25,7 +25,7 @@ func NewUserService(repository *repository.UserRepository, tokenService *TokenSe
 	return &UserService{repository, tokenService}
 }
 
-func (s *UserService) GetAllItems(limit int, page int, sort string) (*model.UserConnection, error) {
+func (s *UserService) GetAllUsers(limit int, page int, sort string) (*model.UsersConnection, error) {
 	return s.repository.GetAll(limit, page, sort)
 }
 
@@ -34,7 +34,7 @@ func (s *UserService) GetUser(email string) (*model.User, error) {
 }
 
 func (s *UserService) IssueToken(payload model.LoginPayload) (*model.AccessToken, error) {
-	user, err := s.FindByEmail(payload.Email)
+	user, err := s.repository.FindByEmail(payload.Email)
 	if err != nil {
 		return nil, err
 	}
@@ -43,9 +43,13 @@ func (s *UserService) IssueToken(payload model.LoginPayload) (*model.AccessToken
 		return nil, err
 	}
 
-	token := s.tokenService.generate(user)
+	token, err := s.tokenService.create(user)
 
-	return &model.AccessToken{token}, nil
+	if err != nil {
+		return nil, err
+	}
+
+	return &model.AccessToken{Token: token}, nil
 }
 
 func (s *UserService) CreateUser(payload model.CreateUserPayload) (*model.User, error) {

Original file line number	Diff line number	Diff line change
`@@ -6,7 +6,7 @@ import (`
`6`	`6`	`)`
`7`	`7`
`8`	`8`	`type IUserRepository interface {`
`9`		`- GetAll(limit int, page int, sort string) ([]*model.User, error)`
	`9`	`+ GetAll(limit int, page int, sort string) (*model.UsersConnection, error)`
`10`	`10`	`FindByEmail(email string) (*model.User, error)`
`11`	`11`	`Create(input model.CreateUserPayload) (*model.User, error)`
`12`	`12`	`Update(input model.UpdateUserPayload) (*model.User, error)`
`@@ -23,17 +23,17 @@ func NewUserRepository(db gorm.DB) UserRepository {`
`23`	`23`	`}`
`24`	`24`	`}`
`25`	`25`
`26`		`-func (r UserRepository) GetAll(limit int, page int, sort string) (model.UserConnection, error) {`
	`26`	`+func (r UserRepository) GetAll(limit int, page int, sort string) (model.UsersConnection, error) {`
`27`	`27`	`var users []*model.User`
`28`	`28`	`query := paginate(limit, page, sort)`
`29`	`29`	`err := r.db.Scopes(query).Find(&users).Error`
`30`	`30`	`pageInfo := &model.PageInfo{limit, page, sort}`
`31`	`31`
`32`	`32`	`if err != nil {`
`33`		`- return &model.UserConnection{nil, pageInfo}, err`
	`33`	`+ return &model.UsersConnection{PageInfo: pageInfo}, err`
`34`	`34`	`}`
`35`	`35`
`36`		`- return &model.UserConnection{users, pageInfo}, nil`
	`36`	`+ return &model.UsersConnection{Edges: users, PageInfo: pageInfo}, nil`
`37`	`37`	`}`
`38`	`38`
`39`	`39`	`func (r UserRepository) FindByEmail(email string) (model.User, error) {`
Original file line number	Diff line number	Diff line change
`@@ -8,7 +8,7 @@ import (`
`8`	`8`	`)`
`9`	`9`
`10`	`10`	`type IUserService interface {`
`11`		`- GetAllUsers(limit int, page int, sort string) (*model.UserConnection, error)`
	`11`	`+ GetAllUsers(limit int, page int, sort string) (*model.UsersConnection, error)`
`12`	`12`	`GetUser(email string) (*model.User, error)`
`13`	`13`	`IssueToken(payload model.LoginPayload) (*model.AccessToken, error)`
`14`	`14`	`CreateUser(payload model.CreateUserPayload) (*model.User, error)`
`@@ -25,7 +25,7 @@ func NewUserService(repository repository.UserRepository, tokenService TokenSe`
`25`	`25`	`return &UserService{repository, tokenService}`
`26`	`26`	`}`
`27`	`27`
`28`		`-func (s UserService) GetAllItems(limit int, page int, sort string) (model.UserConnection, error) {`
	`28`	`+func (s UserService) GetAllUsers(limit int, page int, sort string) (model.UsersConnection, error) {`
`29`	`29`	`return s.repository.GetAll(limit, page, sort)`
`30`	`30`	`}`
`31`	`31`
`@@ -34,7 +34,7 @@ func (s UserService) GetUser(email string) (model.User, error) {`
`34`	`34`	`}`
`35`	`35`
`36`	`36`	`func (s UserService) IssueToken(payload model.LoginPayload) (model.AccessToken, error) {`
`37`		`- user, err := s.FindByEmail(payload.Email)`
	`37`	`+ user, err := s.repository.FindByEmail(payload.Email)`
`38`	`38`	`if err != nil {`
`39`	`39`	`return nil, err`
`40`	`40`	`}`
`@@ -43,9 +43,13 @@ func (s UserService) IssueToken(payload model.LoginPayload) (model.AccessToken`
`43`	`43`	`return nil, err`
`44`	`44`	`}`
`45`	`45`
`46`		`- token := s.tokenService.generate(user)`
	`46`	`+ token, err := s.tokenService.create(user)`
`47`	`47`
`48`		`- return &model.AccessToken{token}, nil`
	`48`	`+ if err != nil {`
	`49`	`+ return nil, err`
	`50`	`+ }`
	`51`	`+`
	`52`	`+ return &model.AccessToken{Token: token}, nil`
`49`	`53`	`}`
`50`	`54`
`51`	`55`	`func (s UserService) CreateUser(payload model.CreateUserPayload) (model.User, error) {`